Back to skill
Skillv1.0.4
VirusTotal security
Kuaishou Bilibili Publish · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 4, 2026, 1:36 AM
- Hash
- 3fb50331c63a0781158385b8d07901cc2f9d21e3c6c8d0b4d5e4cd9e2dca3b6d
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: kuaishou-bilibili-publish Version: 1.0.4 The skill bundle provides automated video publishing for Kuaishou, Bilibili, and Douyin by controlling a Chrome browser via the Chrome DevTools Protocol (CDP). It utilizes high-risk capabilities including launching and killing system processes (chrome_launcher.py), direct filesystem access for reading media and configuration files (types.py), and injecting stealth JavaScript to bypass platform anti-bot detections (cdp.py). While these actions are plausibly necessary for the stated purpose of browser automation, the combination of low-level browser control, process management, and evasion techniques meets the threshold for a suspicious classification under the provided criteria. No evidence of intentional malice, such as data exfiltration or credential theft, was detected.
- External report
- View on VirusTotal